Help Center User GuideGetting StartedFAQRelease Notes
 
X
User Guide
Getting Started
FAQs
Release Notes
Contents  

HTTP File Scanning Overview

Access this page from the Monitor menu.

A record is kept of all file metadata sent to the cloud for inspection. These are files downloaded by hosts and found to be suspicious based on known signatures or URLs. From the main page, click the file’s signature to view more information, such as file details, what other malware scanners say about this file, and a complete list of hosts that downloaded this file.

Note: When managing Sky ATP with Security Director, you must select a Sky ATP realm from the available pulldown.

Export Data—Click the Export button to download file scanning data to a CSV file. You are prompted to narrow the data download to a selected time-frame.

The following information is available on this page.

Table 27: HTTP Scanning Data Fields

Field

Definition

File Signature

A unique identifier located at the beginning of a file that provides information on the contents of the file. The file signature can also contain information that ensures the original data stored in the file remains intact and has not been modified.

Threat Level

The threat score.

Filename

The name of the file, including the extension.

Last Submitted

The time and date of the most recent scan of this file.

URL

The URL from which the file originated.

Verdict

The name of file and the type of threat if the verdict is positive for malware. Examples: Trojan, Application, Adware. If the file is not malware, the verdict is "clean."

Category

The type of file. Examples: PDF, executable, document.

Related Documentation

Ask questions in TechWiki

Check documentation in TechLibrary

Rating by you:      
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit